I am currently attempting to display the list of roles applied to the current user. The purpose here is so that the user understands the context in which they are using the application and why they may be restricted from certain areas of the application.
>From reading other discussion threads, it appears this is not a feature provided by Shiro so I was attempting to modify my realm to provide this information in a principal object to be retrieved elsewhere in the application. The trouble is that I have a 2-realm application where one realm performs authentication and a second realm performs authorization only. I'd like the authorization-only realm to be able to store the roles loaded as principal objects but I haven't found an API mechanism to allow this. I have been able to use the authorizing realm to retrieve and modify an existing principal object created by the authenticating realm. However, this approach ties the realms together in a way that makes my application less flexible to configurations which opt for a different authenticating realm. Is there any way for an authorizing realm to ADD principal objects to the PrincipalCollection? Or better yet, is there any way to request from Shiro a list of roles from across all realms? Thanks, Jonathan -- View this message in context: http://shiro-user.582556.n2.nabble.com/Principal-added-by-AuthorizingRealm-tp7581171.html Sent from the Shiro User mailing list archive at Nabble.com.
